$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141602.roa File: AS141602.roa (raw, json) Hash identifier: Z7Ft292pJddhqsSPHRHHejgzB1iT54lal6lPQ8orAFk= Subject key identifier: 4A:A0:D8:5D:C0:7A:D6:22:14:84:BD:28:CF:B5:91:0D:08:BD:E3:43 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 43919E7C9CC5956F9AEE1A498188F4A1497817FF Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141602.roa Signing time: Mon 03 Jun 2024 07:00:00 +0000 ROA not before: Mon 03 Jun 2024 06:55:00 +0000 ROA not after: Mon 02 Jun 2025 07:00:00 +0000 asID: 141602 IP address blocks: 2401:3a0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:91:9e:7c:9c:c5:95:6f:9a:ee:1a:49:81:88:f4:a1:49:78:17:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jun 3 06:55:00 2024 GMT Not After : Jun 2 07:00:00 2025 GMT Subject: CN=4AA0D85DC07AD6221484BD28CFB5910D08BDE343 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:7f:4f:8d:c8:7b:67:84:8e:91:77:53:db:84: 0f:24:8c:0b:5b:e7:fe:34:2e:88:97:18:b2:a9:5a: 4b:ec:63:e5:a3:21:0e:1f:e1:aa:bb:c4:39:57:69: ef:9e:fb:e4:d2:fe:17:0a:4d:cf:53:ff:07:28:f7: 3f:9c:68:09:bc:9e:19:27:b5:aa:73:1e:d6:1b:75: 58:e9:fb:66:c9:95:ce:79:87:05:c2:26:d5:c5:1f: 51:a1:f7:f6:5c:92:b9:63:dc:13:ed:40:3f:28:d1: fd:57:6a:b3:97:de:09:0c:33:87:a8:5a:ec:f0:27: f3:a0:d0:48:85:5a:12:ae:17:4b:d0:d9:a2:e4:47: 7a:35:92:af:cd:65:63:ac:72:2e:e5:8b:41:47:24: 8a:fb:a6:a9:91:5b:65:76:23:fb:5d:c9:cd:ab:93: a2:e5:36:3d:9d:68:79:2e:d5:1e:cd:03:3c:49:61: cf:7d:6b:ef:38:3c:1e:c8:55:49:85:4d:6c:ca:5c: 49:e3:82:df:1b:a3:e4:75:20:66:13:2a:26:79:d6: e1:cb:ac:b5:33:2e:b0:73:6a:f1:2d:ae:e7:93:a4: 02:b2:cd:dc:cb:88:19:f2:c1:c1:9c:af:56:93:84: d5:50:90:e3:94:bd:4d:59:9b:07:5f:cc:47:e5:a8: 28:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:A0:D8:5D:C0:7A:D6:22:14:84:BD:28:CF:B5:91:0D:08:BD:E3:43 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141602.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:3a0::/32 Signature Algorithm: sha256WithRSAEncryption 7a:d6:ae:f9:af:b6:83:28:ce:d3:be:ef:99:c2:0e:08:98:ea: fc:5f:c5:9e:b8:d3:30:ba:fe:9a:50:f6:7b:e3:9c:53:b6:2d: 56:01:68:fb:7b:4b:c9:42:ed:2f:6b:97:97:e2:f1:75:4b:43: 77:41:d5:aa:ef:14:b3:1e:6b:8a:87:76:e1:fa:0c:32:52:4d: 6e:56:2a:f5:75:38:dc:9a:2c:95:85:36:fb:61:2d:c1:e7:29: 91:dd:c2:5e:ed:27:34:01:4b:e7:2a:07:50:5f:20:23:a4:96: 9b:ef:58:d1:be:8c:c9:62:14:2b:ef:f6:2d:81:0a:c0:f5:b1: 4c:3d:5f:84:7b:ca:5d:94:2d:a5:90:d7:e2:6f:d5:bf:9d:6a: 81:71:44:fc:ce:b1:f9:77:20:d5:7c:14:ba:48:a9:fe:75:94: 6f:bc:bf:83:da:a8:a3:cd:88:7e:a0:90:fd:88:bd:37:c6:79: ad:ea:bd:59:e9:37:06:9a:ec:28:45:ac:b6:d5:9f:a0:0a:0f: 66:bb:aa:10:12:3e:1e:bf:b9:39:0f:ff:ee:37:56:b5:a7:bb: 65:f8:29:b2:57:9c:1a:4e:81:e1:b6:5b:5a:f9:c7:e0:ca:a0: c6:0e:0a:5d:c3:3b:6c:64:90:49:09:5e:9d:d3:70:be:ce:f9: 94:18:0c:56 -----BEGIN CERTIFICATE----- MIIE3jCCA8agAwIBAgIUQ5GefJzFlW+a7hpJgYj0oUl4F/8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDYwMzA2NTUwMFoX DTI1MDYwMjA3MDAwMFowMzExMC8GA1UEAxMoNEFBMEQ4NURDMDdBRDYyMjE0ODRC RDI4Q0ZCNTkxMEQwOEJERTM0MzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOx/T43Ie2eEjpF3U9uEDySMC1vn/jQuiJcYsqlaS+xj5aMhDh/hqrvEOVdp 75775NL+FwpNz1P/Byj3P5xoCbyeGSe1qnMe1ht1WOn7ZsmVznmHBcIm1cUfUaH3 9lySuWPcE+1APyjR/Vdqs5feCQwzh6ha7PAn86DQSIVaEq4XS9DZouRHejWSr81l Y6xyLuWLQUckivumqZFbZXYj+13JzauTouU2PZ1oeS7VHs0DPElhz31r7zg8HshV SYVNbMpcSeOC3xuj5HUgZhMqJnnW4custTMusHNq8S2u55OkArLN3MuIGfLBwZyv VpOE1VCQ45S9TVmbB1/MR+WoKGsCAwEAAaOCAdEwggHNMB0GA1UdDgQWBBRKoNhd wHrWIhSEvSjPtZENCL3jQzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTYwMi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8w DQQCAAIwBwMFACQBA6AwDQYJKoZIhvcNAQELBQADggEBAHrWrvmvtoMoztO+75nC DgiY6vxfxZ640zC6/ppQ9nvjnFO2LVYBaPt7S8lC7S9rl5fi8XVLQ3dB1arvFLMe a4qHduH6DDJSTW5WKvV1ONyaLJWFNvthLcHnKZHdwl7tJzQBS+cqB1BfICOklpvv WNG+jMliFCvv9i2BCsD1sUw9X4R7yl2ULaWQ1+Jv1b+daoFxRPzOsfl3INV8FLpI qf51lG+8v4PaqKPNiH6gkP2IvTfGea3qvVnpNwaa7ChFrLbVn6AKD2a7qhASPh6/ uTkP/+43VrWnu2X4KbJXnBpOgeG2W1r5x+DKoMYOCl3DO2xkkEkJXp3TcL7O+ZQY DFY= -----END CERTIFICATE-----Generated at Mon Nov 25 13:14:27 2024 by rpki-client on console-ams.rpki-client.org